Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APOL/w0hTcdQ508pPLuNU5CHjQFYymAg.roa
File: w0hTcdQ508pPLuNU5CHjQFYymAg.roa (raw, json)
Hash identifier: HoslZvijBXce2MOt1eAGN8mMVp/64g73U798+21W1fY=
Subject key identifier: C3:48:53:71:D4:39:D3:CA:4F:2E:E3:54:E4:21:E3:40:56:32:98:08
Certificate issuer: /CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Certificate serial: 1342
Authority key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/w0hTcdQ508pPLuNU5CHjQFYymAg.roa
Signing time: Sat 23 Sep 2023 00:23:12 +0000
ROA not before: Sat 23 Sep 2023 00:23:12 +0000
ROA not after: Sat 31 Aug 2024 03:10:53 +0000
asID: 7482
IP address blocks: 60.244.192.0/18 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4930 (0x1342)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Validity
Not Before: Sep 23 00:23:12 2023 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=C3485371D439D3CA4F2EE354E421E34056329808
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d7:b5:82:16:11:fb:5a:88:39:57:2f:f9:42:
5f:b5:84:74:18:d0:6e:39:df:64:3f:e7:76:c5:3f:
58:f9:ea:a3:4b:b3:7a:3e:28:0e:cc:3d:45:c2:43:
a7:6f:0f:17:33:ec:a0:3b:03:22:80:a8:82:c0:aa:
c2:2c:57:50:54:0d:ab:0a:1d:a2:78:ba:71:47:ab:
da:19:16:dc:55:91:5c:48:3e:b0:7b:b2:92:79:82:
6a:43:c2:8a:c4:ab:3d:f3:fe:7e:8f:85:10:2f:c1:
14:dd:05:45:9c:3f:6f:88:bf:4e:15:eb:3e:13:d6:
fc:1c:1f:aa:5c:52:a6:d3:9f:d4:2f:f0:a2:10:9c:
5b:c2:4f:0d:3f:57:41:45:59:6e:c9:38:7e:02:7b:
f2:27:67:80:dc:08:4f:5a:7f:31:19:6a:eb:b1:45:
51:7b:8c:e7:4c:fc:95:23:7c:c4:8d:4d:aa:cd:cb:
9e:7f:9e:3e:ab:01:29:ec:b2:c0:9f:54:fd:7a:86:
ad:ed:b6:04:6b:b9:9c:1d:19:64:d1:84:8b:2f:d5:
d7:f7:3d:95:97:32:04:7a:23:47:a0:c7:12:32:b9:
2f:87:9e:0e:c4:a9:db:12:1e:04:46:91:b3:43:03:
7c:43:e8:b8:12:6b:3e:43:b2:f3:2a:7a:53:1d:95:
f7:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:48:53:71:D4:39:D3:CA:4F:2E:E3:54:E4:21:E3:40:56:32:98:08
X509v3 Authority Key Identifier:
keyid:FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/w0hTcdQ508pPLuNU5CHjQFYymAg.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
60.244.192.0/18
Signature Algorithm: sha256WithRSAEncryption
1a:94:10:ae:6c:37:72:d5:86:23:dd:be:7e:46:17:6b:ac:06:
f2:0c:35:10:04:bb:7f:9b:52:fd:f1:0e:11:18:85:79:02:ad:
04:83:0d:88:c4:55:3b:a1:01:cb:3b:e6:a4:fa:fd:4a:db:f0:
e1:a1:86:6b:35:82:b0:8f:3c:51:83:ee:37:38:c3:0b:b2:9e:
ae:8e:5f:9d:79:23:26:5d:4f:c4:9f:36:b3:ff:9c:1a:c8:09:
7d:d2:ac:f5:6d:19:c8:ff:ba:d8:67:28:3e:8d:a5:76:5b:17:
71:ee:e8:96:85:5f:d7:48:ff:06:2c:61:3e:5c:d2:fb:8f:e5:
e4:ab:da:f9:cb:c5:fb:fc:2a:ed:fe:e7:59:97:73:5b:3b:5c:
df:2b:f9:50:3e:a1:03:a7:f9:4e:0e:5d:57:a8:d1:d5:f9:d4:
ef:52:b8:0d:cc:56:a2:e6:47:09:93:92:2f:d4:0a:17:e1:a8:
d7:64:c0:2d:68:f7:cd:2e:c5:f9:cc:e8:c4:5c:d5:50:d7:42:
ac:a3:35:46:54:31:c9:59:81:5c:af:88:2d:3b:94:c7:9f:c2:
66:c3:a9:4c:2d:d9:65:d1:51:95:5b:9f:1d:67:3e:a6:19:b6:
6c:35:11:61:41:60:51:e2:da:e4:ba:5c:09:1d:e9:84:6a:1a:
36:51:f1:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org